CloudTrail is a service which provides you with a record of AWS API calls. This is a kind of auditing service provided by AWS. Using the log data provided by CloudTrail, you can audit what your users are doing, or you can troubleshoot operational and security incidents. CloudTrail also helps you to demonstrate compliance with your policies or regulatory standards. As and when API calls are made, CloudTrail records those calls in an S3 log file.
You can look up specific API activity, such as which IAM user made the call to the AWS, which service or which API calls failed because of permission issues, and so on. Most importantly, you can send CloudTrail logs to CloudWatch logs. We learnt in the previous chapter how we can create metrics and then use an alarm on the data in CloudWatch logs. Do not get confused between CloudWatch and CloudTrail. I have...